icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

SeaMonkey < 1.1.18 Multiple Vulnerabilities

Medium

Synopsis

The remote host is running a web browser that is vulnerable to multiple attack vectors.

Description

The remote host is running a version of SeaMonkey earlier than 1.1.18. Such versions are potentially affected by multiple vulnerabilities :

- A heap overflow vulnerability in the code that handles regular expressions in certificate names. (MFSA-2009-43)

- A mismatch in the treatment of domain names in SSL certificates between SSL clients and the Certificate Authorities which issue server certificates. (MFSA-2009-42)

Solution

Upgrade to SeaMonkey 1.1.18 or later.